Bonjour,
En consultant sur mon PC le fichier suivant : /var/log/maillog je viens de m'apercevoir que mon PC était utilisé à mon insu pour envoyer de nombreux mails.
Quelqu'un connait-il une parade ?
J'avais installé f-prot comme antivirus mais je n'arrive pas à le lancer. Donc je ne suis pas protégé des virus.
Merci d'avance pour toute réponse.
Yakaben
Nota : Ma config : PC Athlon 1800+ sous Fedora 4
Envoi de mails à mon insu
Modérateur: modos Ixus
7 messages
• Page 1 sur 1
Envoi de mails à mon insu
par yakaben » 29 Déc 2005 23:03
Dernière édition par yakaben le 30 Déc 2005 22:10, édité 1 fois au total.
- yakaben
- Matelot
- Messages: 4
- Inscrit le: 29 Déc 2005 22:48
Re: Envoi de mails à mon insu
par lembal » 30 Déc 2005 12:11
yakaben a écrit:En consultant /var/log/maillog je viens de m'apercevoir que mon PC était utilisé à mon insu pour envoyer de nombreux mails.
Quelqu'un connait-il une parade ?
J'avais installé f-prot comme antivirus mais je n'arrive pas à le lancer. Donc je ne suis pas protégé des virus.
Ma config : PC Athlon 1800+ sous Fedora 4
Yakaben
Peux-tu nous communiquer ces logs ?
- lembal
- Vice-Amiral
- Messages: 880
- Inscrit le: 13 Jan 2003 01:00
- Localisation: Paris
par yakaben » 30 Déc 2005 23:05
Bonjour,
Pour répondre à ta demande voici l'extrait du fichier maillog concernant la journée du 28 Décembre .
Sauf erreur de ma part il y a beaucoup de "sendmail" alors que je n'ai pas envoyé grand chose.
J'en conclu, peut-être à tort, que mon PC sert de serveur de spam ...
Merci d'y jeter un coup d'oeil et de me donner ton avis.
Yakaben
mailog du 28/12/05
Dec 28 04:19:09 localhost sendmail[2523]: alias database /etc/aliases rebuilt by root
Dec 28 04:19:09 localhost sendmail[2523]: /etc/aliases: 76 aliases, longest 10 bytes, 765 bytes total
Dec 28 04:19:09 localhost sendmail[2527]: starting daemon (8.13.4): SMTP+queueing@01:00:00
Dec 28 04:19:09 localhost sm-msp-queue[2532]: starting daemon (8.13.4): queueing@01:00:00
Dec 28 05:05:22 localhost sendmail[2513]: alias database /etc/aliases rebuilt by root
Dec 28 05:05:22 localhost sendmail[2513]: /etc/aliases: 76 aliases, longest 10 bytes, 765 bytes total
Dec 28 05:05:23 localhost sendmail[2517]: starting daemon (8.13.4): SMTP+queueing@01:00:00
Dec 28 05:05:23 localhost sm-msp-queue[2522]: starting daemon (8.13.4): queueing@01:00:00
Dec 28 08:59:34 localhost sendmail[2520]: alias database /etc/aliases rebuilt by root
Dec 28 08:59:34 localhost sendmail[2520]: /etc/aliases: 76 aliases, longest 10 bytes, 765 bytes total
Dec 28 08:59:34 localhost sendmail[2524]: starting daemon (8.13.4): SMTP+queueing@01:00:00
Dec 28 08:59:34 localhost sm-msp-queue[2529]: starting daemon (8.13.4): queueing@01:00:00
Dec 28 10:04:45 localhost sendmail[4031]: jBS94jVR004031: from=root, size=5908, class=0, nrcpts=1, msgid=<200512280904.jBS94jVR004031@localhost.localdomain>, relay=root@localhost
Dec 28 10:04:45 localhost sendmail[4032]: jBS94jJR004032: from=<root@localhost.localdomain>, size=6214, class=0, nrcpts=1, msgid=<200512280904.jBS94jVR004031@localhost.localdomain>, proto=ESMTP, daemon=MTA, relay=localhost.localdomain [127.0.0.1]
Dec 28 10:04:45 localhost sendmail[4031]: jBS94jVR004031: to=root, ctladdr=root (0/0), delay=00:00:00, xdelay=00:00:00, mailer=relay, pri=35908, relay=[127.0.0.1] [127.0.0.1], dsn=2.0.0, stat=Sent (jBS94jJR004032 Message accepted for delivery)
Dec 28 10:04:46 localhost sendmail[4033]: jBS94jJR004032: to=<root@localhost.localdomain>, ctladdr=<root@localhost.localdomain> (0/0), delay=00:00:01, xdelay=00:00:01, mailer=local, pri=36451, dsn=2.0.0, stat=Sent
Dec 28 19:11:29 localhost sendmail[2508]: alias database /etc/aliases rebuilt by root
Dec 28 19:11:29 localhost sendmail[2508]: /etc/aliases: 76 aliases, longest 10 bytes, 765 bytes total
Dec 28 19:11:29 localhost sendmail[2512]: starting daemon (8.13.4): SMTP+queueing@01:00:00
Dec 28 19:11:29 localhost sm-msp-queue[2517]: starting daemon (8.13.4): queueing@01:00:00
Dec 28 22:05:24 localhost spamd[4763]: spamd starting
Dec 28 22:05:25 localhost spamd[4763]: server started on UNIX domain socket /home/francois/.evolution/cache/tmp/spamd-socket-path-C2VRnz (running version 3.0.4)
Dec 28 22:05:25 localhost spamd[4763]: server successfully spawned child process, pid 4766
Dec 28 22:05:25 localhost spamd[4767]: got connection over /home/francois/.evolution/cache/tmp/spamd-socket-path-C2VRnz
Dec 28 22:05:25 localhost spamd[4763]: server successfully spawned child process, pid 4767
Dec 28 22:05:25 localhost spamd[4763]: server successfully spawned child process, pid 4768
Dec 28 22:05:25 localhost spamd[4763]: server successfully spawned child process, pid 4769
Dec 28 22:05:25 localhost spamd[4763]: server successfully spawned child process, pid 4770
Dec 28 22:05:26 localhost spamd[4767]: processing message (unknown) for francois:500.
Dec 28 22:05:26 localhost spamd[4767]: clean message (1.1/5.0) for francois:500 in 1.0 seconds, 19 bytes.
Dec 28 22:05:26 localhost spamd[4767]: result: . 1 - MISSING_SUBJECT scantime=1.0,size=19,mid=(unknown),autolearn=no
Dec 28 22:05:26 localhost spamd[4768]: got connection over /home/francois/.evolution/cache/tmp/spamd-socket-path-C2VRnz
Dec 28 22:05:27 localhost spamd[4768]: checking message <f4facf6c94b48b15@alcatelaleniaspace.com> for francois:500.
Dec 28 22:05:27 localhost spamd[4768]: clean message (1.9/5.0) for francois:500 in 0.4 seconds, 76114 bytes.
Dec 28 22:05:27 localhost spamd[4768]: result: . 1 - INVALID_DATE,NO_REAL_NAME,RATWARE_HASH_2_V2 scantime=0.4,size=76114,mid=<f4facf6c94b48b15@alcatelaleniaspace.com>,autolearn=no
Dec 28 22:05:27 localhost spamd[4769]: got connection over /home/francois/.evolution/cache/tmp/spamd-socket-path-C2VRnz
Dec 28 22:05:27 localhost spamd[4769]: checking message <1f9a.bcafda1a2f1@fbi.gov> for francois:500.
Dec 28 22:05:27 localhost spamd[4769]: clean message (2.7/5.0) for francois:500 in 0.2 seconds, 76178 bytes.
Dec 28 22:05:27 localhost spamd[4769]: result: . 2 - DEAR_SOMETHING,INVALID_DATE,MISSING_MIMEOLE,NO_REAL_NAME,PRIORITY_NO_NAME scantime=0.2,size=76178,mid=<1f9a.bcafda1a2f1@fbi.gov>,autolearn=no
Dec 28 22:05:28 localhost spamd[4766]: got connection over /home/francois/.evolution/cache/tmp/spamd-socket-path-C2VRnz
Dec 28 22:05:28 localhost spamd[4766]: checking message <d1ddc9df63.8bdafad0@yahoo.fr> for francois:500.
Dec 28 22:05:28 localhost spamd[4766]: clean message (1.7/5.0) for francois:500 in 0.2 seconds, 75919 bytes.
Dec 28 22:05:28 localhost spamd[4766]: result: . 1 - INVALID_DATE,MISSING_MIMEOLE,NO_REAL_NAME,PRIORITY_NO_NAME scantime=0.2,size=75919,mid=<d1ddc9df63.8bdafad0@yahoo.fr>,autolearn=no
Dec 28 22:05:28 localhost spamd[4770]: got connection over /home/francois/.evolution/cache/tmp/spamd-socket-path-C2VRnz
Dec 28 22:05:28 localhost spamd[4770]: checking message <c04f9e26a86bbf0ac0d3@pynpwum.com> for francois:500.
Dec 28 22:05:28 localhost spamd[4770]: clean message (1.6/5.0) for francois:500 in 0.2 seconds, 76052 bytes.
Dec 28 22:05:28 localhost spamd[4770]: result: . 1 - NO_REAL_NAME,PRIORITY_NO_NAME scantime=0.2,size=76052,mid=<c04f9e26a86bbf0ac0d3@pynpwum.com>,autolearn=no
Dec 28 22:05:28 localhost spamd[4767]: got connection over /home/francois/.evolution/cache/tmp/spamd-socket-path-C2VRnz
Dec 28 22:05:28 localhost spamd[4767]: checking message <d9cb.ed2c2c7c6fb145a@francetelecom.com> for francois:500.
Dec 28 22:05:28 localhost spamd[4767]: clean message (1.6/5.0) for francois:500 in 0.1 seconds, 75971 bytes.
Dec 28 22:05:28 localhost spamd[4767]: result: . 1 - NO_REAL_NAME,PRIORITY_NO_NAME scantime=0.1,size=75971,mid=<d9cb.ed2c2c7c6fb145a@francetelecom.com>,autolearn=no
Dec 28 22:05:30 localhost spamd[4768]: got connection over /home/francois/.evolution/cache/tmp/spamd-socket-path-C2VRnz
Dec 28 22:05:30 localhost spamd[4768]: checking message <000001c60b63$0a5a5d80$0100007f@localhost> for francois:500.
Dec 28 22:05:30 localhost spamd[4768]: clean message (2.2/5.0) for francois:500 in 0.3 seconds, 14823 bytes.
Dec 28 22:05:30 localhost spamd[4768]: result: . 2 - HTML_90_100,HTML_MESSAGE,HTML_TAG_EXIST_TBODY,LOTS_OF_STUFF scantime=0.3,size=14823,mid=<000001c60b63$0a5a5d80$0100007f@localhost>,autolearn=no
Dec 28 22:05:30 localhost spamd[4769]: got connection over /home/francois/.evolution/cache/tmp/spamd-socket-path-C2VRnz
Dec 28 22:05:30 localhost spamd[4769]: checking message <452408380.20051228003814@cityu.edu.hk> for francois:500.
Dec 28 22:05:30 localhost spamd[4769]: identified spam (6.5/5.0) for francois:500 in 0.1 seconds, 3023 bytes.
Dec 28 22:05:30 localhost spamd[4769]: result: Y 6 - DRUGS_ERECTILE,DRUG_DOSAGE,DRUG_ED_CAPS,HTML_60_70,HTML_FONT_SIZE_LARGE,HTML_MESSAGE,HTML_SHOUTING5,INVALID_DATE,MANY_EXCLAMATIONS,ONLINE_PHARMACY,PLING_PLING,UPPERCASE_25_50 scantime=0.1,size=3023,mid=<452408380.20051228003814@cityu.edu.hk>,autolearn=no
Dec 28 22:05:30 localhost spamd[4766]: got connection over /home/francois/.evolution/cache/tmp/spamd-socket-path-C2VRnz
Dec 28 22:05:30 localhost spamd[4766]: checking message <000001c60b7d$b27d2000$0100007f@localhost> for francois:500.
Dec 28 22:05:31 localhost spamd[4766]: clean message (2.8/5.0) for francois:500 in 0.3 seconds, 14767 bytes.
Dec 28 22:05:31 localhost spamd[4766]: result: . 2 - HTML_90_100,HTML_MESSAGE,HTML_TAG_EXIST_TBODY,LOTS_OF_STUFF,SUBJ_BUY scantime=0.3,size=14767,mid=<000001c60b7d$b27d2000$0100007f@localhost>,autolearn=no
Dec 28 22:05:31 localhost spamd[4770]: got connection over /home/francois/.evolution/cache/tmp/spamd-socket-path-C2VRnz
Dec 28 22:05:31 localhost spamd[4770]: checking message <20051228040520.94B89F6A8@sc8-sf-spam2.sourceforge.net> for francois:500.
Dec 28 22:05:31 localhost spamd[4770]: clean message (0.2/5.0) for francois:500 in 0.2 seconds, 3545 bytes.
Dec 28 22:05:31 localhost spamd[4770]: result: . 0 - AWL,NO_REAL_NAME scantime=0.2,size=3545,mid=<20051228040520.94B89F6A8@sc8-sf-spam2.sourceforge.net>,autolearn=no
Dec 28 22:05:31 localhost spamd[4767]: got connection over /home/francois/.evolution/cache/tmp/spamd-socket-path-C2VRnz
Dec 28 22:05:31 localhost spamd[4767]: checking message <9B3218AE.5A835AE@go2.pl> for francois:500.
Dec 28 22:05:32 localhost spamd[4767]: clean message (0.0/5.0) for francois:500 in 1.2 seconds, 1787 bytes.
Dec 28 22:05:32 localhost spamd[4767]: result: . 0 - scantime=1.2,size=1787,mid=<9B3218AE.5A835AE@go2.pl>,autolearn=ham
Dec 28 22:05:32 localhost spamd[4768]: got connection over /home/francois/.evolution/cache/tmp/spamd-socket-path-C2VRnz
Dec 28 22:05:32 localhost spamd[4768]: checking message <6ae701c60bab$e04de5a7$0f3edaf8@cima.cl> for francois:500.
Dec 28 22:05:33 localhost spamd[4768]: clean message (0.0/5.0) for francois:500 in 0.4 seconds, 973 bytes.
Dec 28 22:05:33 localhost spamd[4768]: result: . 0 - scantime=0.4,size=973,mid=<6ae701c60bab$e04de5a7$0f3edaf8@cima.cl>,autolearn=ham
Dec 28 22:05:33 localhost spamd[4769]: got connection over /home/francois/.evolution/cache/tmp/spamd-socket-path-C2VRnz
Dec 28 22:05:33 localhost spamd[4769]: checking message <1790127463-2200512328161459888@R.Ems7.net> for francois:500.
Dec 28 22:05:33 localhost spamd[4769]: clean message (3.5/5.0) for francois:500 in 0.2 seconds, 6378 bytes.
Dec 28 22:05:33 localhost spamd[4769]: result: . 3 - AWL,HTML_80_90,HTML_IMAGE_RATIO_02,HTML_MESSAGE,HTML_MIME_NO_HTML_TAG,MIME_HTML_ONLY scantime=0.2,size=6378,mid=<1790127463-2200512328161459888@R.Ems7.net>,autolearn=no
Dec 28 22:05:33 localhost spamd[4766]: got connection over /home/francois/.evolution/cache/tmp/spamd-socket-path-C2VRnz
Dec 28 22:05:33 localhost spamd[4766]: checking message <2AC08C6D.5977631@honduras.com> for francois:500.
Dec 28 22:05:34 localhost spamd[4766]: clean message (0.0/5.0) for francois:500 in 0.5 seconds, 1743 bytes.
Dec 28 22:05:34 localhost spamd[4766]: result: . 0 - DATE_IN_PAST_48_96 scantime=0.5,size=1743,mid=<2AC08C6D.5977631@honduras.com>,autolearn=ham
Dec 28 22:05:34 localhost spamd[4770]: got connection over /home/francois/.evolution/cache/tmp/spamd-socket-path-C2VRnz
Dec 28 22:05:34 localhost spamd[4770]: checking message <20051228175229.D5ED0685C2D@smtp.mandriva.org> for francois:500.
Dec 28 22:05:34 localhost spamd[4770]: clean message (0.0/5.0) for francois:500 in 0.7 seconds, 3244 bytes.
Dec 28 22:05:34 localhost spamd[4770]: result: . 0 - scantime=0.7,size=3244,mid=<20051228175229.D5ED0685C2D@smtp.mandriva.org>,autolearn=ham
Dec 28 22:05:36 localhost spamd[4767]: got connection over /home/francois/.evolution/cache/tmp/spamd-socket-path-C2VRnz
Dec 28 22:05:36 localhost spamd[4767]: checking message <NMID-103-187388153-aW5mb3JtYXRpb25AYWxhcGFnZS5jb20=@alp> for francois:500.
Dec 28 22:05:37 localhost spamd[4767]: clean message (0.0/5.0) for francois:500 in 0.5 seconds, 2210 bytes.
Dec 28 22:05:37 localhost spamd[4767]: result: . 0 - AWL scantime=0.5,size=2210,mid=<NMID-103-187388153-aW5mb3JtYXRpb25AYWxhcGFnZS5jb20=@alp>,autolearn=ham
Dec 28 22:05:37 localhost spamd[4768]: got connection over /home/francois/.evolution/cache/tmp/spamd-socket-path-C2VRnz
Dec 28 22:05:37 localhost spamd[4768]: checking message <4jtlhr$4l4r0b@mailer4.fotovista.com> for francois:500.
Dec 28 22:05:37 localhost spamd[4768]: clean message (1.1/5.0) for francois:500 in 0.6 seconds, 25384 bytes.
Dec 28 22:05:37 localhost spamd[4768]: result: . 1 - AWL,HTML_80_90,HTML_MESSAGE,HTML_TAG_EXIST_TBODY scantime=0.6,size=25384,mid=<4jtlhr$4l4r0b@mailer4.fotovista.com>,autolearn=no
Pour répondre à ta demande voici l'extrait du fichier maillog concernant la journée du 28 Décembre .
Sauf erreur de ma part il y a beaucoup de "sendmail" alors que je n'ai pas envoyé grand chose.
J'en conclu, peut-être à tort, que mon PC sert de serveur de spam ...
Merci d'y jeter un coup d'oeil et de me donner ton avis.
Yakaben
mailog du 28/12/05
Dec 28 04:19:09 localhost sendmail[2523]: alias database /etc/aliases rebuilt by root
Dec 28 04:19:09 localhost sendmail[2523]: /etc/aliases: 76 aliases, longest 10 bytes, 765 bytes total
Dec 28 04:19:09 localhost sendmail[2527]: starting daemon (8.13.4): SMTP+queueing@01:00:00
Dec 28 04:19:09 localhost sm-msp-queue[2532]: starting daemon (8.13.4): queueing@01:00:00
Dec 28 05:05:22 localhost sendmail[2513]: alias database /etc/aliases rebuilt by root
Dec 28 05:05:22 localhost sendmail[2513]: /etc/aliases: 76 aliases, longest 10 bytes, 765 bytes total
Dec 28 05:05:23 localhost sendmail[2517]: starting daemon (8.13.4): SMTP+queueing@01:00:00
Dec 28 05:05:23 localhost sm-msp-queue[2522]: starting daemon (8.13.4): queueing@01:00:00
Dec 28 08:59:34 localhost sendmail[2520]: alias database /etc/aliases rebuilt by root
Dec 28 08:59:34 localhost sendmail[2520]: /etc/aliases: 76 aliases, longest 10 bytes, 765 bytes total
Dec 28 08:59:34 localhost sendmail[2524]: starting daemon (8.13.4): SMTP+queueing@01:00:00
Dec 28 08:59:34 localhost sm-msp-queue[2529]: starting daemon (8.13.4): queueing@01:00:00
Dec 28 10:04:45 localhost sendmail[4031]: jBS94jVR004031: from=root, size=5908, class=0, nrcpts=1, msgid=<200512280904.jBS94jVR004031@localhost.localdomain>, relay=root@localhost
Dec 28 10:04:45 localhost sendmail[4032]: jBS94jJR004032: from=<root@localhost.localdomain>, size=6214, class=0, nrcpts=1, msgid=<200512280904.jBS94jVR004031@localhost.localdomain>, proto=ESMTP, daemon=MTA, relay=localhost.localdomain [127.0.0.1]
Dec 28 10:04:45 localhost sendmail[4031]: jBS94jVR004031: to=root, ctladdr=root (0/0), delay=00:00:00, xdelay=00:00:00, mailer=relay, pri=35908, relay=[127.0.0.1] [127.0.0.1], dsn=2.0.0, stat=Sent (jBS94jJR004032 Message accepted for delivery)
Dec 28 10:04:46 localhost sendmail[4033]: jBS94jJR004032: to=<root@localhost.localdomain>, ctladdr=<root@localhost.localdomain> (0/0), delay=00:00:01, xdelay=00:00:01, mailer=local, pri=36451, dsn=2.0.0, stat=Sent
Dec 28 19:11:29 localhost sendmail[2508]: alias database /etc/aliases rebuilt by root
Dec 28 19:11:29 localhost sendmail[2508]: /etc/aliases: 76 aliases, longest 10 bytes, 765 bytes total
Dec 28 19:11:29 localhost sendmail[2512]: starting daemon (8.13.4): SMTP+queueing@01:00:00
Dec 28 19:11:29 localhost sm-msp-queue[2517]: starting daemon (8.13.4): queueing@01:00:00
Dec 28 22:05:24 localhost spamd[4763]: spamd starting
Dec 28 22:05:25 localhost spamd[4763]: server started on UNIX domain socket /home/francois/.evolution/cache/tmp/spamd-socket-path-C2VRnz (running version 3.0.4)
Dec 28 22:05:25 localhost spamd[4763]: server successfully spawned child process, pid 4766
Dec 28 22:05:25 localhost spamd[4767]: got connection over /home/francois/.evolution/cache/tmp/spamd-socket-path-C2VRnz
Dec 28 22:05:25 localhost spamd[4763]: server successfully spawned child process, pid 4767
Dec 28 22:05:25 localhost spamd[4763]: server successfully spawned child process, pid 4768
Dec 28 22:05:25 localhost spamd[4763]: server successfully spawned child process, pid 4769
Dec 28 22:05:25 localhost spamd[4763]: server successfully spawned child process, pid 4770
Dec 28 22:05:26 localhost spamd[4767]: processing message (unknown) for francois:500.
Dec 28 22:05:26 localhost spamd[4767]: clean message (1.1/5.0) for francois:500 in 1.0 seconds, 19 bytes.
Dec 28 22:05:26 localhost spamd[4767]: result: . 1 - MISSING_SUBJECT scantime=1.0,size=19,mid=(unknown),autolearn=no
Dec 28 22:05:26 localhost spamd[4768]: got connection over /home/francois/.evolution/cache/tmp/spamd-socket-path-C2VRnz
Dec 28 22:05:27 localhost spamd[4768]: checking message <f4facf6c94b48b15@alcatelaleniaspace.com> for francois:500.
Dec 28 22:05:27 localhost spamd[4768]: clean message (1.9/5.0) for francois:500 in 0.4 seconds, 76114 bytes.
Dec 28 22:05:27 localhost spamd[4768]: result: . 1 - INVALID_DATE,NO_REAL_NAME,RATWARE_HASH_2_V2 scantime=0.4,size=76114,mid=<f4facf6c94b48b15@alcatelaleniaspace.com>,autolearn=no
Dec 28 22:05:27 localhost spamd[4769]: got connection over /home/francois/.evolution/cache/tmp/spamd-socket-path-C2VRnz
Dec 28 22:05:27 localhost spamd[4769]: checking message <1f9a.bcafda1a2f1@fbi.gov> for francois:500.
Dec 28 22:05:27 localhost spamd[4769]: clean message (2.7/5.0) for francois:500 in 0.2 seconds, 76178 bytes.
Dec 28 22:05:27 localhost spamd[4769]: result: . 2 - DEAR_SOMETHING,INVALID_DATE,MISSING_MIMEOLE,NO_REAL_NAME,PRIORITY_NO_NAME scantime=0.2,size=76178,mid=<1f9a.bcafda1a2f1@fbi.gov>,autolearn=no
Dec 28 22:05:28 localhost spamd[4766]: got connection over /home/francois/.evolution/cache/tmp/spamd-socket-path-C2VRnz
Dec 28 22:05:28 localhost spamd[4766]: checking message <d1ddc9df63.8bdafad0@yahoo.fr> for francois:500.
Dec 28 22:05:28 localhost spamd[4766]: clean message (1.7/5.0) for francois:500 in 0.2 seconds, 75919 bytes.
Dec 28 22:05:28 localhost spamd[4766]: result: . 1 - INVALID_DATE,MISSING_MIMEOLE,NO_REAL_NAME,PRIORITY_NO_NAME scantime=0.2,size=75919,mid=<d1ddc9df63.8bdafad0@yahoo.fr>,autolearn=no
Dec 28 22:05:28 localhost spamd[4770]: got connection over /home/francois/.evolution/cache/tmp/spamd-socket-path-C2VRnz
Dec 28 22:05:28 localhost spamd[4770]: checking message <c04f9e26a86bbf0ac0d3@pynpwum.com> for francois:500.
Dec 28 22:05:28 localhost spamd[4770]: clean message (1.6/5.0) for francois:500 in 0.2 seconds, 76052 bytes.
Dec 28 22:05:28 localhost spamd[4770]: result: . 1 - NO_REAL_NAME,PRIORITY_NO_NAME scantime=0.2,size=76052,mid=<c04f9e26a86bbf0ac0d3@pynpwum.com>,autolearn=no
Dec 28 22:05:28 localhost spamd[4767]: got connection over /home/francois/.evolution/cache/tmp/spamd-socket-path-C2VRnz
Dec 28 22:05:28 localhost spamd[4767]: checking message <d9cb.ed2c2c7c6fb145a@francetelecom.com> for francois:500.
Dec 28 22:05:28 localhost spamd[4767]: clean message (1.6/5.0) for francois:500 in 0.1 seconds, 75971 bytes.
Dec 28 22:05:28 localhost spamd[4767]: result: . 1 - NO_REAL_NAME,PRIORITY_NO_NAME scantime=0.1,size=75971,mid=<d9cb.ed2c2c7c6fb145a@francetelecom.com>,autolearn=no
Dec 28 22:05:30 localhost spamd[4768]: got connection over /home/francois/.evolution/cache/tmp/spamd-socket-path-C2VRnz
Dec 28 22:05:30 localhost spamd[4768]: checking message <000001c60b63$0a5a5d80$0100007f@localhost> for francois:500.
Dec 28 22:05:30 localhost spamd[4768]: clean message (2.2/5.0) for francois:500 in 0.3 seconds, 14823 bytes.
Dec 28 22:05:30 localhost spamd[4768]: result: . 2 - HTML_90_100,HTML_MESSAGE,HTML_TAG_EXIST_TBODY,LOTS_OF_STUFF scantime=0.3,size=14823,mid=<000001c60b63$0a5a5d80$0100007f@localhost>,autolearn=no
Dec 28 22:05:30 localhost spamd[4769]: got connection over /home/francois/.evolution/cache/tmp/spamd-socket-path-C2VRnz
Dec 28 22:05:30 localhost spamd[4769]: checking message <452408380.20051228003814@cityu.edu.hk> for francois:500.
Dec 28 22:05:30 localhost spamd[4769]: identified spam (6.5/5.0) for francois:500 in 0.1 seconds, 3023 bytes.
Dec 28 22:05:30 localhost spamd[4769]: result: Y 6 - DRUGS_ERECTILE,DRUG_DOSAGE,DRUG_ED_CAPS,HTML_60_70,HTML_FONT_SIZE_LARGE,HTML_MESSAGE,HTML_SHOUTING5,INVALID_DATE,MANY_EXCLAMATIONS,ONLINE_PHARMACY,PLING_PLING,UPPERCASE_25_50 scantime=0.1,size=3023,mid=<452408380.20051228003814@cityu.edu.hk>,autolearn=no
Dec 28 22:05:30 localhost spamd[4766]: got connection over /home/francois/.evolution/cache/tmp/spamd-socket-path-C2VRnz
Dec 28 22:05:30 localhost spamd[4766]: checking message <000001c60b7d$b27d2000$0100007f@localhost> for francois:500.
Dec 28 22:05:31 localhost spamd[4766]: clean message (2.8/5.0) for francois:500 in 0.3 seconds, 14767 bytes.
Dec 28 22:05:31 localhost spamd[4766]: result: . 2 - HTML_90_100,HTML_MESSAGE,HTML_TAG_EXIST_TBODY,LOTS_OF_STUFF,SUBJ_BUY scantime=0.3,size=14767,mid=<000001c60b7d$b27d2000$0100007f@localhost>,autolearn=no
Dec 28 22:05:31 localhost spamd[4770]: got connection over /home/francois/.evolution/cache/tmp/spamd-socket-path-C2VRnz
Dec 28 22:05:31 localhost spamd[4770]: checking message <20051228040520.94B89F6A8@sc8-sf-spam2.sourceforge.net> for francois:500.
Dec 28 22:05:31 localhost spamd[4770]: clean message (0.2/5.0) for francois:500 in 0.2 seconds, 3545 bytes.
Dec 28 22:05:31 localhost spamd[4770]: result: . 0 - AWL,NO_REAL_NAME scantime=0.2,size=3545,mid=<20051228040520.94B89F6A8@sc8-sf-spam2.sourceforge.net>,autolearn=no
Dec 28 22:05:31 localhost spamd[4767]: got connection over /home/francois/.evolution/cache/tmp/spamd-socket-path-C2VRnz
Dec 28 22:05:31 localhost spamd[4767]: checking message <9B3218AE.5A835AE@go2.pl> for francois:500.
Dec 28 22:05:32 localhost spamd[4767]: clean message (0.0/5.0) for francois:500 in 1.2 seconds, 1787 bytes.
Dec 28 22:05:32 localhost spamd[4767]: result: . 0 - scantime=1.2,size=1787,mid=<9B3218AE.5A835AE@go2.pl>,autolearn=ham
Dec 28 22:05:32 localhost spamd[4768]: got connection over /home/francois/.evolution/cache/tmp/spamd-socket-path-C2VRnz
Dec 28 22:05:32 localhost spamd[4768]: checking message <6ae701c60bab$e04de5a7$0f3edaf8@cima.cl> for francois:500.
Dec 28 22:05:33 localhost spamd[4768]: clean message (0.0/5.0) for francois:500 in 0.4 seconds, 973 bytes.
Dec 28 22:05:33 localhost spamd[4768]: result: . 0 - scantime=0.4,size=973,mid=<6ae701c60bab$e04de5a7$0f3edaf8@cima.cl>,autolearn=ham
Dec 28 22:05:33 localhost spamd[4769]: got connection over /home/francois/.evolution/cache/tmp/spamd-socket-path-C2VRnz
Dec 28 22:05:33 localhost spamd[4769]: checking message <1790127463-2200512328161459888@R.Ems7.net> for francois:500.
Dec 28 22:05:33 localhost spamd[4769]: clean message (3.5/5.0) for francois:500 in 0.2 seconds, 6378 bytes.
Dec 28 22:05:33 localhost spamd[4769]: result: . 3 - AWL,HTML_80_90,HTML_IMAGE_RATIO_02,HTML_MESSAGE,HTML_MIME_NO_HTML_TAG,MIME_HTML_ONLY scantime=0.2,size=6378,mid=<1790127463-2200512328161459888@R.Ems7.net>,autolearn=no
Dec 28 22:05:33 localhost spamd[4766]: got connection over /home/francois/.evolution/cache/tmp/spamd-socket-path-C2VRnz
Dec 28 22:05:33 localhost spamd[4766]: checking message <2AC08C6D.5977631@honduras.com> for francois:500.
Dec 28 22:05:34 localhost spamd[4766]: clean message (0.0/5.0) for francois:500 in 0.5 seconds, 1743 bytes.
Dec 28 22:05:34 localhost spamd[4766]: result: . 0 - DATE_IN_PAST_48_96 scantime=0.5,size=1743,mid=<2AC08C6D.5977631@honduras.com>,autolearn=ham
Dec 28 22:05:34 localhost spamd[4770]: got connection over /home/francois/.evolution/cache/tmp/spamd-socket-path-C2VRnz
Dec 28 22:05:34 localhost spamd[4770]: checking message <20051228175229.D5ED0685C2D@smtp.mandriva.org> for francois:500.
Dec 28 22:05:34 localhost spamd[4770]: clean message (0.0/5.0) for francois:500 in 0.7 seconds, 3244 bytes.
Dec 28 22:05:34 localhost spamd[4770]: result: . 0 - scantime=0.7,size=3244,mid=<20051228175229.D5ED0685C2D@smtp.mandriva.org>,autolearn=ham
Dec 28 22:05:36 localhost spamd[4767]: got connection over /home/francois/.evolution/cache/tmp/spamd-socket-path-C2VRnz
Dec 28 22:05:36 localhost spamd[4767]: checking message <NMID-103-187388153-aW5mb3JtYXRpb25AYWxhcGFnZS5jb20=@alp> for francois:500.
Dec 28 22:05:37 localhost spamd[4767]: clean message (0.0/5.0) for francois:500 in 0.5 seconds, 2210 bytes.
Dec 28 22:05:37 localhost spamd[4767]: result: . 0 - AWL scantime=0.5,size=2210,mid=<NMID-103-187388153-aW5mb3JtYXRpb25AYWxhcGFnZS5jb20=@alp>,autolearn=ham
Dec 28 22:05:37 localhost spamd[4768]: got connection over /home/francois/.evolution/cache/tmp/spamd-socket-path-C2VRnz
Dec 28 22:05:37 localhost spamd[4768]: checking message <4jtlhr$4l4r0b@mailer4.fotovista.com> for francois:500.
Dec 28 22:05:37 localhost spamd[4768]: clean message (1.1/5.0) for francois:500 in 0.6 seconds, 25384 bytes.
Dec 28 22:05:37 localhost spamd[4768]: result: . 1 - AWL,HTML_80_90,HTML_MESSAGE,HTML_TAG_EXIST_TBODY scantime=0.6,size=25384,mid=<4jtlhr$4l4r0b@mailer4.fotovista.com>,autolearn=no
- yakaben
- Matelot
- Messages: 4
- Inscrit le: 29 Déc 2005 22:48
par yakaben » 02 Jan 2006 21:26
Bonjour et tout d'abord, bonne année 2006,
Tu ne vois pas de problème en examinant cet extrait de fichier maillog. Je suis rassuré mais ne comprends pas bien ce que signifient toutes ces lignes comportant "localhost sendmail". Je pensais que cela signifiat qu'un mail avait été envoyé. J'en ai compté 16. Pour ma part si j'en ai envoyé 1 uo 2 c'est le maximum.
Je vais donc attendre et voir ....
Merci de m'avoir donné ton avis.
Yakaben
Tu ne vois pas de problème en examinant cet extrait de fichier maillog. Je suis rassuré mais ne comprends pas bien ce que signifient toutes ces lignes comportant "localhost sendmail". Je pensais que cela signifiat qu'un mail avait été envoyé. J'en ai compté 16. Pour ma part si j'en ai envoyé 1 uo 2 c'est le maximum.
Je vais donc attendre et voir ....
Merci de m'avoir donné ton avis.
Yakaben
- yakaben
- Matelot
- Messages: 4
- Inscrit le: 29 Déc 2005 22:48
par HaM » 03 Jan 2006 00:16
- Code: Tout sélectionner
Dec 28 04:19:09 localhost sendmail[2523]: alias database /etc/aliases rebuilt by root
Dec 28 04:19:09 localhost sendmail[2523]: /etc/aliases: 76 aliases, longest 10 bytes, 765 bytes total
Dec 28 04:19:09 localhost sendmail[2527]: starting daemon (8.13.4): SMTP+queueing@01:00:00
Dec 28 04:19:09 localhost sm-msp-queue[2532]: starting daemon (8.13.4): queueing@01:00:00
Dec 28 05:05:22 localhost sendmail[2513]: alias database /etc/aliases rebuilt by root
Dec 28 05:05:22 localhost sendmail[2513]: /etc/aliases: 76 aliases, longest 10 bytes, 765 bytes total
Dec 28 05:05:23 localhost sendmail[2517]: starting daemon (8.13.4): SMTP+queueing@01:00:00
Dec 28 05:05:23 localhost sm-msp-queue[2522]: starting daemon (8.13.4): queueing@01:00:00
Dec 28 08:59:34 localhost sendmail[2520]: alias database /etc/aliases rebuilt by root
Dec 28 08:59:34 localhost sendmail[2520]: /etc/aliases: 76 aliases, longest 10 bytes, 765 bytes total
Dec 28 08:59:34 localhost sendmail[2524]: starting daemon (8.13.4): SMTP+queueing@01:00:00
Dec 28 08:59:34 localhost sm-msp-queue[2529]: starting daemon (8.13.4): queueing@01:00:00
nrcpts=1
La c'est juste la reconstruction du fichier qui contient les alias et le redemarrage du serveur.
- Code: Tout sélectionner
Dec 28 10:04:45 localhost sendmail[4031]: jBS94jVR004031: from=root, size=5908, class=0,
nrcpts=1, msgid=<200512280904.jBS94jVR004031@localhost.localdomain>, relay=root@localhost
Dec 28 10:04:45 localhost sendmail[4032]: jBS94jJR004032: from=<root@localhost.localdomain>, size=6214, class=0, nrcpts=1, msgid=<200512280904.jBS94jVR004031@localhost.localdomain>, proto=ESMTP, daemon=MTA, relay=localhost.localdomain [127.0.0.1]
Dec 28 10:04:45 localhost sendmail[4031]: jBS94jVR004031: to=root, ctladdr=root (0/0), delay=00:00:00, xdelay=00:00:00, mailer=relay, pri=35908, relay=[127.0.0.1] [127.0.0.1], dsn=2.0.0, stat=Sent (jBS94jJR004032 Message accepted for delivery)
Dec 28 10:04:46 localhost sendmail[4033]: jBS94jJR004032: to=<root@localhost.localdomain>, ctladdr=<root@localhost.localdomain> (0/0), delay=00:00:01, xdelay=00:00:01, mailer=local, pri=36451, dsn=2.0.0, stat=Sent
Dec 28 19:11:29 localhost sendmail[2508]: alias database /etc/aliases rebuilt by root
Dec 28 19:11:29 localhost sendmail[2508]: /etc/aliases: 76 aliases, longest 10 bytes, 765 bytes total
Dec 28 19:11:29 localhost sendmail[2512]: starting daemon (8.13.4): SMTP+queueing@01:00:00
Et la 2 mails partent:
jBS94jVR004031 de la part de "root"
jBS94jJR004032 de la part de "root@localhost.localdomain"
jBS94jVR004031 à destination de "root"
jBS94jJR004032 à destination de "root@localhost.localdomain"
Les 2 sont envoyés.
-
HaM - Amiral
- Messages: 1045
- Inscrit le: 31 Juil 2002 00:00
- Localisation: Boulogne-Billancourt 92
7 messages
• Page 1 sur 1
Retour vers Sécurité et réseaux
Qui est en ligne ?
Utilisateur(s) parcourant actuellement ce forum : Aucun utilisateur inscrit et 1 invité